Using MAMP to unhack my site.

  • MAMP users please help. My site was hacked with malware and I have taken it offline and have all files zipped and downloaded to my Mac. If I install MAMP and deploy my site locally to try and find the hack will MAMP contain the malware locally or can it still function and cause havoc? BTW the server backups are too recent and will also have the problem and I never did do a Duplicator backup of this site earlier than the server backups ??

Viewing 8 replies - 1 through 8 (of 8 total)

  • Its not for MAPM but it describes pretty much on how to deal with the site after it is hacked https://codex.www.ads-software.com/FAQ_My_site_was_hacked

    Thread Starter JanSnowski

    (@jansnowski)

    Hi Sakar, thanks for the link. It appears that they bypassed Wordfence with a plugin mod – this is the note from WordFence:
    Critical Problems:
    * File appears to be malicious: wp-content/plugins/index.php
    Critical Problems:
    * File appears to be malicious: wp-content/plugins/datalist.php
    * This file may contain malicious executable code: /home/pjaweb/public_html/xxxxxxxxxx.com/wp-content/plugins/libxml.php
    [I have put xxx for my site]
    My techie went in ad says the file is blank with a note that “silence is golden”
    I need to recover all my posts, pages, etc that were done over a few years so can I install the site with MAMP and delete the malicious files and recover my site?

    Is the data on the database deleted too ? If not better idea is to export the post and pages from the mallicious site if it still exists and create a fresh WordPress site using the data (post and pages) from the hacked site and install fresh themes and plugins not a single code to take from the old site.

    Thread Starter JanSnowski

    (@jansnowski)

    No the site was zipped and archived on my server and that zip file is what I have downloaded and that I want to deploy/install in MAMP on my Mac to get all that data (post, pages & images). I am just worried about the hack causing further damage after I extract it in MAMP.

    Please turn off the internet and do it. Bots need to contact some host to do any thing.

    Please turn off the internet and do it. Bots need to contact some host to do any thing. Or set it up in a virtual environment using tools like vmware or something.

    @jansnowski

    … to get all that data (post, pages & images).

    Of the three you listed, only the images are in the files you zipped. The other two, along with settings and other information, is all stored in and retrieved from the database. You absolutely require an export of your database to deploy on MAMP. And as Sakar has noted, a good idea to not be connected to the net if your live site has been compromised.

    Thread Starter JanSnowski

    (@jansnowski)

    Thanks guys for the info. I will disconnect my net connection and deploy the site in MAMP and find the malware code and retrieve my files. Thanks again ??

Viewing 8 replies - 1 through 8 (of 8 total)
  • The topic ‘Using MAMP to unhack my site.’ is closed to new replies.